FreeBSD : chromium -- multiple vulnerabilities (f53dd5cc-527f-11e7-a772-e8e0b747a45a)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

Google Chrome releases reports :

5 security fixes in this release, including :

- [725032] High CVE-2017-5087: Sandbox Escape in IndexedDB. Reported
by Ned Williamson on 2017-05-22

- [729991] High CVE-2017-5088: Out of bounds read in V8. Reported by
Xiling Gong of Tencent Security Platform Department on 2017-06-06

- [714196] Medium CVE-2017-5089: Domain spoofing in Omnibox. Reported
by Michal Bentkowski on 2017-04-21

- [732498] Various fixes from internal audits, fuzzing and other
initiatives

See also :

http://www.nessus.org/u?744889a5
http://www.nessus.org/u?a23b2023

Solution :

Update the affected packages.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 100861 ()

Bugtraq ID:

CVE ID: CVE-2017-5087
CVE-2017-5088
CVE-2017-5089

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now